magician

MEDIUM W011: Third-party content exposure detected (indirect prompt injection risk).

• Third-party content exposure detected (high risk: 0.80). The SKILL.md "Installation" and references/5-platform-support.md explicitly instruct the agent to "Read [URL]" (https://awesome-skills.dev/skills/entertainment/magician.md) and apply that content to persistent config/system prompts, so the agent is expected to ingest external public web content that could materially change its behavior.